I finally got rid of the midaddle trojan, after going to a link I found on this forum (great place, might I add). The midaddle main file is easy to find and delete, but it has two backups that replace the main file when connected to the internet. I deleted the main file through HJT, and then did a search for all .exe files, and looked for the 2 files created the same exact time and date, with a unrecognizable name (gibberish), and deleted them. Problem solved. Although I deleted some other files that I was unsure of, but the time of creation was the same.
Now my question. If it happens again, I should be able to delete the main file with HJT. Reconnect to the internet, and let the backups replace the main fiel. Disconnect.......delete the main file again, then delete the two .exe files that were created at time of re-connection to the internet? That way I would know exactly which ones they were, and not have to delete others that only look suspisious. By the way, the backups names are change daily to prevent adaware and spybot from recongizing them.
Just wondering in case I have to do it again. It was a bitch to remove the first time, so I'll be ready next time. Thanks for any insight.